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This listing of claims replaces all prior versions, and 
listings of claims in the instant application: 

Listing of Claims; 
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1. (Currently Amended) A method for digital content 
access control, comprising: 

receiving , by a rights locker provider, a rights 
locker enrollment request from a user device 
associated with a user, said rights locker enrollment 
request comprising a digital content request and 
enrollment authentication data; 

determining , by said rights locker provider, 
whether said user is authorized using said enrollment 
authentication data , said determining comprising 
determining the rights of said user to access said 
rights locker and the rights of said user to digital 
content specified by said digital content request 
wherein said rights locker provides (1) a description 
of a user's access rights for digital content; and (2) 
controlled access to said description ; and 
if said user is authorized, 

initializing , by said rights locker provider, 
said rights locker with rights to said digital 
content ; 

if a first token used to create oaid 
authenticated righto locker acccoo rcqucoto has 
been fully redeemed, obtaining , by said rights 
locker provider, a new token that authenticates 
future access to saida rights locker corresponding 
to said digital content; 

creating , by said rights locker provider, an 
authenticated rights locker access request based at 
least in part on said new token; and 
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sending , by said rights locker provider; said 
authenticated rights locker access request over a 
network to said user device . 

2. (Original) The method of claim 1 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

3. (Original) The method of claim 1 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to 
access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to 
digital content associated with said rights locker. 

4. (Original) The method of claim 3 wherein said 
rights locker access authentication data comprises payment 
for use of a rights locker service. 

5. (Original) The method of claim 3 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

6. (Original) The method of claim 1 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 

7. (Original) The method of claim 1 wherein said 
determining comprises determining whether said user is 
entitled to become an enrolled user based at least in part 
on whether payment for use of the rights locker service 
succeeds . 
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8. (Original) The method of claim 1 wherein said 
determining comprises determining whether an enrolled user 
is entitled to populate said rights locker with rights to 
said digital content based at least in part on whether 
payment for said rights succeeds. 

9. (Original) The method of claim 1 wherein said new 
token is for storage in a bookmark on said user device. 

10. (Original) The method of claim 1 wherein said 
sending further comprises embedding said authenticated 
rights locker access request in a Web cookie before said 
sending . 

11. (Currently Amended) The method of claim 1 wherein 
said sending further comprises encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer Protocol HTTF Response message before said sending. 

12 . (Currently Amended) A method for digital content 
access control, comprising: 

receiving , by a rights locker provider, a first 
authenticated rights locker access request and a digital 
content specification from a user device associated with 
a user wherein said rights locker provides (1) a 
description of a user's access rights for digital 
content; and (2) controlled access to said description ; 

validating , by said rights locker provider, said 
first authenticated rights locker access request; 

if said validating indicates said first 
authenticated rights locker access request is valid, 
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creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository; 
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if a first token used to create said 
authenticated rights locker access request has been 
fully redeemed, obtaining , by said rights locker 
provider, a new token that authenticates future 
access to a rights locker corresponding to said 
digital content; 

creating , by said rights locker provider, a new 
authenticated rights locker access request based at 
least in part on said new token; and 

sending , by said rights locker provider, said 
authenticated digital content request and said new 
authenticated rights locker access request over a 
network to said user device. 



13. (Original) The method of claim 12 wherein said 
receiving further comprises receiving one or more delivery 
parameters, said one or more delivery parameters indicating 
where said digital content should be sent, a delivery 
mechanism, or both. 

14. (Original) The method of claim 12 wherein said 
new token is for storage in a bookmark on a user device. 

15. (Original) The method of claim 12, further 
comprising embedding said authenticated rights locker access 
request in a Web cookie before said sending. 

16. (Currently Amended) The method of claim 12, 
further comprising encapsulating said authenticated rights 
locker access request in an HyperText Transfer ProtocolH CTP 
Response message before said sending. 

17. (Currently Amended) A method for digital content 
access control, comprising: 

receiving , by a rights locker provider, a first 
authenticated rights locker access request and a 
digital content specification from a user device 
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associated with a user wherein said rights locker 
provides (1) a description of a user's access rights 
for digital content; and (2) controlled access to said 
description ; 

validating , by said rights locker provider, said 
first authenticated rights locker access request; 

if said validating indicates said first 
authenticated rights locker access request is valid, 

creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository ,- 

sending , by said rights locker provider, 
said authenticated digital content request to 
saida : digital content repository; 

if a first token used to create said 
authenticated rights locker access request has 
been fully redeemed, obtaining , by said rights 
locker provider, a new token that authenticates 
future access to a rights locker corresponding to 
said digital content; 

creating , by said rights locker 
provider, a new authenticated rights locker 
access request based at least in part on said 
new token; and 

sending , by said rights locker provider, 
oaid authenticated digital — content rcqucot 
a-nd said new authenticated rights locker 
access request to said user device over a 
network. 
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18. (Original) The method of claim 17 wherein said 
receiving further comprises receiving one or more delivery 
parameters, said one or more delivery parameters indicating 
where said digital content should be sent, a delivery 
mechanism, or both. 
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19. (Original) The method of claim 17 wherein said 
new token is for storage in a bookmark on a user device. 

20. (Original) The method of claim 17, further 
comprising embedding said authenticated rights locker access 
request in a Web cookie before said sending. 

21. (Currently Amended) The method of claim 17, 
further comprising encapsulating said authenticated rights 
locker access request in an HyperText Transfer Protocolffl H 1 ? 
Response message before said sending. 

22. (Currently Amended) A program storage device 
readable by a machine, embodying a program of instructions 
executable by the machine to perform a method for digital 
content access control, the method comprising: 



receiving , by a rights locker provider, a rights 
locker enrollment request from a user device 
associated with a user, said rights locker enrollment 
request comprising a digital content request and 
enrollment authentication data; 

determining , by said rights locker provider, 
whether said user is authorized using said enrollment 
authentication data , said determining comprising 
determining the rights of said user to access said 
rights locker and the rights of said user to digital 
content specified by said digital content request 
wherein said rights locker provides (1) a description 
of a user's access rights for digital content; and (2) 
controlled access to said description ; and 

if said user is authorized, 

initializing , by said rights locker provider, 
said rights locker with rights to said digital 
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content ; 



if a — first — token used to create said 
authenticated righto — locker access — requests has 
been fully redeemed, obtaining , by said rights 
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locker provider, a new token that authenticates 
future access to said a rights locker corresponding 
to said digital content; 

creating , by said rights locker provider, an 
authenticated rights locker access request based at 
least in part on said new token; and 

sending , by said rights locker provider, said 
authenticated rights locker access request over a 
network to said user device. 



23. (Original) The program storage device of claim 22 
wherein said digital content request comprises a request for 
initializing said rights locker with rights to specified 
digital content . 

24. (Original) The program storage device of claim 22 
wherein said enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to 
access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to 
digital content associated with said rights locker. 

25. (Original) The program storage device of claim 24 
wherein said rights locker access authentication data 
comprises payment for use of a rights locker service. 

26. (Original) The program storage device of claim 24 
wherein said rights content access authentication data 
comprises payment for rights deposited in said rights 
locker . 
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27. (Original) The program storage device of claim 22 
wherein said enrollment authentication data comprises a 
reenrollment key determined in a previous enrollment request 
for said rights locker, said reenrollment key for 
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supplementing or replacing enrollment authentication data of 
said previous enrollment request. 

28. (Original) The program storage device of claim 22 
wherein said determining comprises determining whether said 
user is entitled to become an enrolled user based at least 
in part on whether payment for use of the rights locker 
service succeeds. 

29. (Original) The program storage device of claim 22 
wherein said determining comprises determining whether an 
enrolled user is entitled to populate said rights locker 
with rights to said digital content based at least in part 
on whether payment for said rights succeeds. 

30. (Original) The program storage device of claim 22 
wherein said new token is for storage in a bookmark on said 
user device. 

31. (Original) The program storage device of claim 
22, said method further comprising embedding said 
authenticated rights locker access request in a Web cookie 
before said sending. 

32. (Currently Amended) The program storage device of 
claim 22, said method further comprising encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer ProtocolH ^FFP Response message before said sending. 

33. (Currently Amended) A program storage device 
readable by a machine, embodying a program of instructions 
executable by the machine to perform a method for digital 
content access control, the method comprising: 
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receiving , by a rights locker provider, a first 



authenticated rights locker access request and a 
digital content specification from a user device 
associated with a user wherein said rights locker 
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provides (1) a description of a user's access rights 
for digital content; and (2) controlled access to said 
description ; 

validating , by said rights locker provider, said 
first authenticated rights locker access request; 

if said validating indicates said first 
authenticated rights locker access request is valid, 

creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository; 

if a first token used to create said 
authenticated rights locker access request has 
been fully redeemed, obtaining , by said rights 
locker provider, a new token that authenticates 
future access to a rights locker corresponding to 
said digital content; 

creating , by said rights locker provider, a 
new authenticated rights locker access request 
based at least in part on said new token; and 

sending , by said rights locker provider, said 
authenticated digital content request and said new 
authenticated rights locker access request over a 
network to said user device. 



34. (Original) The program storage device of claim 33 
wherein said receiving further comprises receiving one or 
more delivery parameters, said one or more delivery 
parameters indicating where said digital content should be 
sent, a delivery mechanism, or both. 
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35. (Original) The program storage device of claim 33 
wherein said new token is for storage in a bookmark on a 
user device. 

36. (Original) The program storage device of claim 
33, said method further comprising embedding said 
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authenticated rights locker access request in a Web cookie 
before said sending. 

37. (Currently Amended) The program storage device of 
claim 33, said method further comprising encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer Protocol HTTP Response message before said sending. 

38. (Currently Amended) A program storage device 
readable by a machine, embodying a program of instructions 
executable by the machine to perform a method for digital 
content .access control, the method comprising: 

receiving , by a rights locker provider, a first 
authenticated rights locker access request and a 
digital content specification from a user device 
associated with a user wherein said rights locker 
provides (1) a description of a user's access rights 
for digital content; and (2) controlled access to said 
description ; 



first authenticated rights locker access request; 

if said validating indicates said first 
authenticated rights locker access request is valid, 

creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository; 

sending , by said rights locker provider, 
said authenticated digital content request to 
said ar digital content repository; 

if a first token used to create said 
authenticated rights locker access request has 
been fully redeemed, obtaining , by said rights 



validating , by said rights locker provider, said 
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locker provider, a new token that authenticates 
future access to a rights locker corresponding to 
said digital content; 
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creating , by said rights locker provider, a 
new authenticated rights locker access request 
based at least in part on said new token; and 



sending , by said rights locker provider, 
oaid authenticated digital — content roqucot and 
said new authenticated rights locker access 
request to said user device over a network. 



39. (Original) The program storage device of claim 38 
wherein said receiving further comprises receiving one or 
more delivery parameters, said one or more delivery 
parameters indicating where said, digital content should be 
sent, a delivery mechanism, or both. 

40. (Original) The program storage device of claim 38 
wherein said new token is for storage in a bookmark on a 
user device. 

41. (Original) The program storage device of claim 
38, said method further comprising embedding said 
authenticated rights locker access request in a Web cookie 
before said sending. 

42. (Currently Amended) The program storage device of 
claim 38, said method further comprising encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer Protocol HTTP Response message before said sending. 

43. (Currently Amended) An apparatus for digital 
content access control, comprising: 

means for receiving , by a rights locker provider, 
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a rights locker enrollment request from a user device 
associated with a user, said rights locker enrollment 
request comprising a digital content request and 



enrollment authentication data; 



means for determining , by said rights locker 



provider, whether said user is authorized using said 
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enrollment authentication data , said determining 
comprising determining the rights of said user to 
access said rights locker and the rights of said user 
to digital content specified by said digital content 
request wherein said rights locker provides (1) a 
description of a user 1 s access rights for digital 
content; and (2) controlled access to said 
description ; and 

means for if said user is authorized, 

initializing , by said rights locker provider, 

said rights locker with rights to said digital 

content ; 

if a first token uocd to create aaid 
authenticated rights locker access requests hao 
been fully redeemed, obtaining , by said rights 
locker provider, a new token that authenticates 
future access to said ar rights locker corresponding 
to said digital content; 

creating , by said rights locker provider, an 
authenticated rights locker access request based at 
least in part on said new token; and 

sending , by said rights locker provider, said 
authenticated rights locker access request over a 
network to said user device 



44. (Original) The apparatus of claim 43 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 
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45. (Original) The apparatus of claim 43 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to 
access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to 
digital content associated with said rights locker. 
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46. (Original) The apparatus of claim 45 wherein said 
rights locker access authentication data comprises payment 
for use of a rights locker service. 

47. (Original) The apparatus of claim 45 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

48. (Original) The apparatus of claim 43 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 

49. (Original) The apparatus of claim 43 wherein said 
means for determining comprises means for determining 
whether said user is entitled to become an enrolled user 
based at least in part on whether payment for use of the 
rights locker service succeeds. 

50. (Original) The apparatus of claim 43 wherein said 
means for determining comprises means for determining 
whether an enrolled user is entitled to populate said rights 
locker with rights to said digital content based at least in 
part on whether payment for said rights succeeds. 

51. (Original) The apparatus of claim 43 wherein said 
new token is for storage in a bookmark on said user device. 

52. (Original) The apparatus of claim 43, further 
comprising means for embedding said authenticated rights 
locker access request in a Web cookie before said sending. 

53. (Currently Amended) The apparatus of claim 43, 
further comprising mans for encapsulating said authenticated 
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rights locker access request in an HyperText Transfer 
Protocol HTTP Response message before said sending. 

54 . (Currently Amended) An apparatus for digital 
content access control, comprising: 

means for receiving , by a rights locker provider, 
a first authenticated rights locker access request and 
a digital content specification from a user device 
associated with a user wherein said rights locker 
provides (1) a description of a user's access rights 
for digital content; and (2) controlled access to said 
description ; 

means for validating , by said rights locker 
provider, said first authenticated rights locker access 
request ; 

means for if said validating indicates said first 
authenticated rights locker access request is valid, 

creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository; 

if a first token used to create said 
authenticated rights locker access request has 
been fully redeemed, obtaining , by said rights 
locker provider, a new token that authenticates 
future access to a rights locker corresponding to 
said digital content; 

creating , by said rights locker provider, a 
new authenticated rights locker access request 
based at least in part on said new token; and 

sending , by said rights locker provider, said 
authenticated digital content request and said new 
authenticated rights locker access request over a 
network to said user device . 

55. (Original) The apparatus of claim 54 wherein said 
means for receiving further comprises means for receiving 
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one or more delivery parameters, said one or more delivery- 
parameters indicating where said digital content should be 
sent, a delivery mechanism, or both. 

56. (Original) The apparatus of claim 54 wherein said 
new token is for storage in a bookmark on a user device. 

57. (Original) The apparatus of claim 54, further 
comprising means for embedding said authenticated rights 
locker access request in a Web cookie before said sending. 

58. (Currently Amended) The apparatus of claim 54, 
further comprising means for encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer Protocol ary Response message before said sending. 

59. (Currently Amended) An apparatus for digital 
content access control, comprising: 



a first authenticated rights locker access request and 
a digital content specification from a user device 
associated with a user wherein said rights locker 
provides (1) a description of a user's access rights 
for digital content; and (2) controlled access to said 
description ; 

means for validating , by said rights locker 
provider, said first authenticated rights locker access 
request ; 

means for if said validating indicates said first 
authenticated rights locker access request is valid, 



means for receiving , by a rights locker provider, 
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creating , by said rights locker provider, an 
authenticated digital content request for use in 
accessing digital content stored by a digital 
content repository ; 



sending , by said rights locker provider, 
said authenticated digital content request to 
saide digital content repository; 
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if a first token used to create said 
authenticated rights locker access request has 
j been fully redeemed, obtaining , by said rights 

locker provider, a new token that authenticates 
future access to a rights locker corresponding to 
I said digital content; 

creating , by said rights locker 
provider, a new authenticated rights locker 
access request based at least in part on said 
new token; and 

sending , by said rights locker provider, 
said authenticated digital content request and 
said new authenticated rights locker access 
request to said user device over a network . 

60. (Original) The apparatus of claim 59 wherein said 
means for receiving further comprises means for receiving 
one or more delivery parameters, said one or more delivery 
parameters indicating where said digital content should be 
sent, a delivery mechanism, or both. 

61. (Original) The apparatus of claim 59 wherein said 
new token is for storage in a bookmark on a user device. 

62. (Original) The apparatus of claim 59, further 
j comprising means for embedding said authenticated rights 

locker access request in a Web cookie before said sending. 

63. (Currently Amended) The apparatus of claim 59, 
further comprising means for encapsulating said 
authenticated rights locker access request in an HyperText 
Transfer Protocol HTTP Response message before said sending. 

gunnison, McKay & 64. (Currently Amended) An rights locker provider 
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each of said one or more rights lockers provides (1) a 
description of a user's access rights for digital 
content; and (2) controlled access to said description ; 
and 

a processor configured to: 

receive a rights locker enrollment request 
from a user device associated with a user, said 
rights locker enrollment request comprising a 
digital content request and enrollment 
authentication data; 

determine whether said user is authorized 
using said enrollment authentication data , said 
determining comprising determining the rights of 
said user to access said rights locker and the 
rights of said user to digital content specified 
by said digital content request; and 
if said user is authorized, 

initialize said rights locker with 
rights to said digital content; 

if a first — token uocd to create oaid 
authenticated righto locker access request 
has been fully redeemed, obtain a new token 
that authenticates future access to saida : 
rights locker corresponding to said digital 
content ; 

create an authenticated rights locker 
access request based at least in part on said 
new token; and 

send said authenticated rights locker 
access request over a network to said user 
device . 
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65. (Original) The apparatus of claim 64 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 
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66. (Original) The apparatus of claim 64 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to 
access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to 
digital content associated with said rights locker. 

67. (Original) The apparatus of claim 66 wherein said 
rights locker access authentication data comprises payment 
for use of a rights locker service. 

68. (Original) The apparatus of claim 66 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

69. (Original) The apparatus of claim 66 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 

70. (Original) The apparatus of claim 64 wherein said 
determining comprises determining whether said user is 
entitled to become an enrolled user based at least in part 
on whether payment for use of the rights locker service 
succeeds . 
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71. (Original) The apparatus of claim 64 wherein said 
determining comprises determining whether an enrolled user 
is entitled to populate said rights locker with rights to 
said digital content based at least in part on whether 
payment for said rights succeeds. 
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72. (Original) The apparatus of claim 64 wherein said 
new token is for storage in a bookmark on said user device. 

73. (Original) The apparatus of claim 64 wherein said 
processor is further configured to embed said authenticated 
rights locker access request in a Web cookie before said 
sending . 

74. (Currently Amended) The apparatus of claim 64 
wherein said processor is further configured to encapsulate 
said authenticated rights locker access request in an 
HyperText Transfer Protocol ing^ Response message before said 
sending . 

75. (Currently Amended) Ah A rights locker provider 
apparatus for digital content access control, comprising: 

a memory for storing one or more rights lockers 
that describe digital content qgccoo righto wherein 
each of said one or more rights lockers provides (1) a 
description of a user's access rights for digital 
content; and (2) controlled access to said description ; 
and 



a processor configured to: 

receive a first authenticated rights locker 
access request and a digital content specification 
from a user device associated with a user ; 

validate said first authenticated rights 
locker access request; 

if said validation indicates said first 
authenticated rights locker access request is 



valid, 
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create an authenticated digital content 
request for use in accessing digital content 
stored by a digital content repository; 



if a first token used to create said 



authenticated rights locker access request 



has been fully redeemed, obtain a new token 



Page 29 of 44 



Appl. No. 10/687,415 

Amdt . dated October 9, 2 007 

Reply to Office Action of July 13, 2007 



that authenticates future access to a rights 
locker corresponding to said digital content; 

create a new authenticated rights locker 
access request based at least in part on said 
new token; and 

send said authenticated digital content 
request and said new authenticated rights 
locker access request over a network to said 
user device. 



76. (Original) The apparatus of claim 75 wherein said 
apparatus is further configured to receive one or more 
delivery parameters, said one or more delivery parameters 
indicating where said digital content should be sent, a 
delivery mechanism, or both. 

77. (Original) The apparatus of claim 75 wherein said 
new token is for storage in a bookmark on a user device. 

78. (Original) The apparatus of claim 75 wherein said 
processor is further configured to embed said authenticated 
rights locker access request in a Web cookie before said 
sending . 

79. (Currently Amended) The apparatus of claim 75 
wherein said processor is further configured to encapsulate 
said authenticated rights locker access request in an 
HyperText Transfer Protocol H¥¥fi Response message before said 
sending . 



GUNNISON, McKAY & 

HODGSON, L.L.P. 
Garden West Office Plaza 
1900 Garden Road. Suite 220 
Monterey. CA 93940 

(831)655-0880 
Fax (831) 655-0888 



80. (Currently Amended) An apparatus for digital 
content access control, comprising: 

a memory for storing one or more rights lockers 
that describe digital content access righto wherein 
each of said one or more rights lockers provides (1) a 
description of a user's access rights for digital 
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content; and (2) controlled access to said description ; 
and 

a processor configured to: 

receive a first authenticated rights locker 
access request and a digital content specification 
from a user device associated with a user ; 

validate said first authenticated rights 
locker access request; 

if said validation indicates said first 
authenticated rights locker access request is 
valid, 

create an authenticated digital content 
request for use in accessing digital content 
stored by a digital content repository; 

send said authenticated digital content 
request to a digital content repository; 

if a first token used to create said 
authenticated rights locker access request 
has been fully redeemed, obtain a new token 
that authenticates future access to a rights 
locker corresponding to said digital content; 

create a new authenticated rights locker 
access request based at least in part on said 
new token; and 

send aaid authenticated digital content 
rcqucot and said new authenticated rights 
locker access request to said user device 
over a network. 
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81. (Original) The apparatus of claim 80 wherein said 
apparatus is further configured to receive one or more 
delivery parameters, said one or more delivery parameters 
indicating where said digital content should be sent, a 
delivery mechanism, or both. 

82. (Original) The apparatus of claim 80 wherein said 
new token is for storage in a bookmark on a user device. 
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83. (Original) The apparatus of claim 80 wherein said 
processor is further configured to embed said authenticated 
rights locker access request in a Web cookie before said 
sending . 

84. (Currently Amended) The apparatus of claim 80 
wherein said processor is further configured to encapsulate 
said authenticated rights locker access request in an 
HyperText Transfer Protocolffi HPP Response message before said 
sending . 

85. (Cancelled) 

86. (Cancelled) 

87. (Cancelled) 

88. (Cancelled) 

89. (Cancelled) 

90. (Cancelled) 
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